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AMENDMENTS TO THE CLAIMS 

1. (currently amended) A monitor that monitors the security state of a 
remote computer system, the monitor comprising: 

a computing device; 

a communications medium interconnecting the computing device with the 
remote computer system; 

a pair of data-storage media each containing a sequence of encryption 
keys, one data-storage medium local to the monitor, and the other data-storage medium 
local to the remote computer system; and 

a program, running on the computing device, that exchanges with the 
remote computer system, over the communications medium, messages encrypted using 
one or more encryption keys extracted from the data-storage medium local to the remote 
computer system in order to monitor the security state of the remote computer system. 

2. (currently amended) The monitor of claim 1 wherein, following power 
on or reset of the remote computer system, while the remote computer system is in a 
relatively high-security state, the remote computer system sends an initial-authentication 
message to the monitor, encrypted with a next key extracted from the data-storage 
medium local to the remote computer system. 

3. (currently amended) The monitor of claim 2 wherein the monitor 
receives the initial-authentication message, decrypts the initial-authentication message 
using a next key extracted from the data-storage medium local to the monitor, and stores 
an indication that the remote computer system is in a relatively high-security state. 

4. (currently amended) The monitor of claim 2 wherein the remote 
computer system collects security metrics and includes the security metrics in the initial- 
authentication message. 
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5. (currently amended) The monitor of claim 4 wherein the monitor 
receives the initial-authentication message and extracts the security metrics in order to 
determine the security state of the remote computer system. 

6. (currently amended) The monitor of claim 1 wherein, while the remote 
computer system is in a relatively high-security state, prior to loading and/or executing an 
untrusted software program into memory, the remote computer system sends a going- 
insecure message to the monitor, encrypted with a current key extracted from the data- 
storage medium local to the remote computer system. 

7. (currently amended) The monitor of claim 4- 6 wherein the monitor 
receives the going-insecure message, decrypts the initial-authentication message using a 
current key extracted from the data-storage medium local to the monitor, and stores an 
indication that the remote computer system is in a relatively low-security state. 

8. (original) The monitor of claim 1 wherein the data-storage media both 
contain identical sequences of encryption keys, and each of the data-storage media are 
one of: 

a compact disc; 
a DVD disc; 

an electronic memory; and 
a magnetic disk. 

9. (currently amended) A method for monitoring and reporting the security 
state of a remote computer system, the method comprising: 

providing a monitor computing device interconnected with the remote 
computer system by a communications medium; 

providing a pair of data-storage media, each containing a sequence of 
encryption keys, one data-storage medium local to the monitor computing device, and the 
other data-storage medium local to the remote computer system; and 
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receiving messages from the remote computer system over the 
communications medium by the monitor and storing an indication, by the monitor, of the 
security state of the remote computer system determined by the monitor from the 
received messages. 

10. (currently amended) The method of claim 9 further including 
receiving, by the monitor, a request for information about the security state of the remote 
computer system, and replying with a security- status-inquiry-response message by the 
monitor based on a determined security state of the remote computer system. 

11. (currently amended) The method of claim 9 further including, 
following power on or reset of the remote computer system, while the remote computer 
system is in a relatively high-security state, sending, by the remote computer system, an 
initial-authentication message to the monitor, encrypted with a next key extracted from 
the data-storage medium local to the remote computer system. 

12. (currently amended) The method of claim 11 further including 
receiving, by the monitor, the initial-authentication message, decrypting the initial- 
authentication message using a next key extracted from the data-storage medium local to 
the monitor, and storing an indication that the remote computer system is in a relatively 
high-security state. 

13. (currently amended) The method of claim 11 further including 
collecting, by the remote computer system, security metrics and including the security 
metrics in the initial-authentication message. 

14. (currently amended) The method of claim 13 further including 
receiving, by the monitor, the initial-authentication message and extracting the security 
metrics in order to determine the security state of the remote computer system. 
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15. (currently amended) The method of claim 9 further including sending, 
by the remote computer system, a going-insecure message to the monitor, encrypted with 
a current key extracted from the data-storage medium local to the remote computer 
system, while the remote computer system is in a relatively high-security state, prior to 
loading and/or executing an untrusted software program into memory. 

16. (currently amended) The method of claim 15 further including 
receiving, by the monitor, the going-insecure message, decrypting the going-insecure 
message using a current key extracted from the data-storage medium local to the 
monitor, and storing an indication that the remote computer system is in a relatively low- 
security state. 

17. (original) Computer instructions implementing the method of claim 9 
encoded in a computer-readable medium. 

18. (original) A monitor that monitors the security state of a computer 
system by the method of claim 9. 



